Simple tool to dump/hide services in services.exe process.
☆14Apr 22, 2022Updated 3 years ago
Alternatives and similar repositories for srvhide
Users that are interested in srvhide are comparing it to the libraries listed below
Sorting:
- ☆29Nov 22, 2023Updated 2 years ago
- Tiny Windows executable that outputs version information about the OS.☆11Feb 1, 2026Updated last month
- ☆26Dec 29, 2021Updated 4 years ago
- Freeze target threads (external - internal ) by avoiding SuspendThread detections. Or access registers from start address.☆35Mar 23, 2024Updated last year
- function identification signatures☆12Apr 26, 2021Updated 4 years ago
- Open-source EDR kernel-component for system monitoring and DLL injection☆33Nov 14, 2020Updated 5 years ago
- Rookit and anti rookit on Windows platform☆14Apr 30, 2024Updated last year
- Dangling COM Keys Finder☆17Nov 16, 2021Updated 4 years ago
- ☆17Feb 15, 2022Updated 4 years ago
- Exports monitoring plugin for x64dbg☆22Mar 14, 2023Updated 2 years ago
- Uses WMI Event Win32_ModuleLoadTrace to monitor module loading. Provides filters, and detailed data. Has an option to monitor for CLR Inj…☆42May 9, 2019Updated 6 years ago
- vdk is a set of utilities used to help with exploitation of a vulnerable driver.☆46May 22, 2022Updated 3 years ago
- Easily hook WIN32 x64 functions☆18Feb 19, 2025Updated last year
- ZeroImport is a lightweight and easy to use C++ library for Windows Kernel Drivers. It allows you to hide any import in your kernel drive…☆50Mar 22, 2023Updated 2 years ago
- BasicLDR: A Reflective DLL Loader☆14Jun 11, 2024Updated last year
- LLVM based devirtualization PoC’s.☆21Dec 11, 2021Updated 4 years ago
- Sliver agent rewritten in C++☆49Sep 4, 2024Updated last year
- A Proof-of-Concept implementation of Reflective DLL Injection (RDI) specifically for Windows on ARM64. Demonstrates PEB access via the x1…☆34May 30, 2025Updated 9 months ago
- SetWinEventHook Sample☆50Sep 23, 2023Updated 2 years ago
- Windows MSI Installer LPE (CVE-2021-43883)☆79Dec 17, 2021Updated 4 years ago
- ☆23Mar 6, 2023Updated 2 years ago
- ☆59Oct 17, 2024Updated last year
- ☆144Dec 10, 2022Updated 3 years ago
- defender_database☆24Oct 31, 2023Updated 2 years ago
- Utility functions for building Windows kernel drivers in Rust☆21Nov 16, 2021Updated 4 years ago
- ScrapeAW is a framework that without API scrape IPs across the world using Shodan☆11May 16, 2024Updated last year
- Repo that holds random POCs☆52Jan 8, 2024Updated 2 years ago
- C# Based Universal API Unhooker - Automatically Unhook API Hives (ntdll.dll,kernel32.dll,user32.dll,and kernelbase.dll)☆25Mar 7, 2023Updated 2 years ago
- Extension functionality for the NightHawk operator client☆26Oct 31, 2023Updated 2 years ago
- Extension functionality for the NightHawk operator client☆26Nov 3, 2023Updated 2 years ago
- Exploits made practicing for OSCE☆23Dec 3, 2020Updated 5 years ago
- Converts exported results of CAPA tool from .json format to another formats supporting by different tools.☆22Feb 15, 2022Updated 4 years ago
- ☆61Feb 10, 2022Updated 4 years ago
- Windows RPC example calling stubs generated from MS-LSAT and MS-LSAD☆28Jan 4, 2024Updated 2 years ago
- e(X)tensiable (Rust) Malware Toolkit: (Soon!) Full Featured Rust C2 Framework with Awesome Features!☆28Aug 19, 2024Updated last year
- Arbitrary File Delete in Windows Installer before 10.0.19045.2193☆30Nov 6, 2022Updated 3 years ago
- Reverse engineered API for Microsoft's Time Travel Debugger☆36Apr 18, 2024Updated last year
- A simple rpc2socks alternative in pure Go.☆31Jul 8, 2024Updated last year
- AMSI detection PoC☆31Apr 14, 2020Updated 5 years ago